From 59130f2c6e12f80937444f26cc7ad1d43d6f12f7 Mon Sep 17 00:00:00 2001 From: Lionel Herbet Date: Tue, 3 Dec 2024 09:53:39 +0000 Subject: [PATCH] update doc for google id --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 16de0cd..af8a809 100644 --- a/README.md +++ b/README.md @@ -92,7 +92,7 @@ The filter relies on the spark [spark.ui.filters](https://spark.apache.org/docs/ | `cookie-max-age-minutes` | `AUTH_COOKE_MAX_AGE_MINUTES` | 12 * 60 | The maximum spark-cookie cookie duration in minutes | | `cookie-cipher-secret-key` | `AUTH_COOKIE_ENCRYPTION_KEY` | - | Cookie encryption key
Can be generated using: `openssl enc -aes-128-cbc -k -P -md sha1 -pbkdf2` | | `cookie-is-secure` | `AUTH_COOKE_IS_SECURE` | true | When enabled, the cookie is transmitted over a secure connection only (HTTPS).
Disable the option if your run with a non secure connection (HTTP) | -| `user-id` | `AUTH_USER_ID` | email | * `email`: set the id seen by spark acls as the email filled in the access token.
* `sub`: set the id seen by spark acls as the sub filled in the access token. | +| `user-id` | `AUTH_USER_ID` | email | * `email`: set the id seen by spark acls as the email filled in the access token.
* `sub`: set the id seen by spark acls as the sub filled in the access.
* `google`: set the id to the sub sent by google but remove the prefix 'account.google.com:'. | | `jwt-header` | `JWT_HEADER` | jwt_token | Header that may contain the JWT Token that will be used for authentication. If not present, it will fall back with the default autentication workflow with a redirection on the login page. | | `jwt-header-signing-alg` | `JWT_HEADER_SIGNING_ALG` | RS256, ES256 | Signature algorithm used to verify the JWT Token provided. | | `jwt-header-issuer` | `JWT_HEADER_ISSUER` | issuer-uri from well known configuration | Issuer if different from the default issuer uri retrieved from the well known configuration fetched with 'issuer-uri' parameter. |